$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E50D7EFABCF911EA83F88D29C4F9AE02.roa File: E50D7EFABCF911EA83F88D29C4F9AE02.roa (raw, json) Hash identifier: dB0Rmfu5j8KUss4OZsX/h1Ed6RUhBjrFdbxCBgy/Y1Y= Subject key identifier: D2:89:79:F4:0D:50:40:22:CC:37:D6:C4:1F:32:FE:91:E1:FE:8D:5E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B433 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E50D7EFABCF911EA83F88D29C4F9AE02.roa Signing time: Thu 08 May 2025 16:08:09 +0000 ROA not before: Thu 08 May 2025 16:08:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136697 IP address blocks: 103.104.52.0/22 maxlen: 24 103.148.180.0/23 maxlen: 24 103.154.38.0/23 maxlen: 24 103.157.240.0/23 maxlen: 24 2001:df5:3580::/48 maxlen: 48 2001:df7:80::/48 maxlen: 48 2404:e640::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46131 (0xb433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:08:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd6e9-4bce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:25:12:36:c2:a6:74:60:c7:fe:2d:2c:3d:52: 4b:d3:29:19:1a:a8:01:0b:b8:70:bd:48:d8:6a:7b: f1:25:a6:6e:31:f0:86:55:63:09:45:e3:92:b4:43: a3:06:18:a7:bb:49:24:af:c5:fb:d0:3c:ce:65:e4: 37:f8:87:81:80:9c:8b:4a:b4:4b:5f:95:9e:f4:df: 82:d5:d7:ed:cb:1c:07:f9:40:86:f9:24:f5:10:29: cc:79:43:64:eb:61:6b:38:f8:60:30:80:02:a5:8a: dc:0e:ef:68:0b:ac:ce:4c:3e:21:a2:f2:cf:a4:ef: 0d:a7:90:5f:8a:d6:3a:53:31:cc:be:98:2a:31:7d: 65:dd:7b:d3:37:00:52:0e:c3:af:1e:7f:3a:1f:6e: 62:52:45:49:e3:3f:f4:d9:7c:c8:7a:36:8f:d9:7d: 6c:6e:5e:11:cb:34:f6:93:3f:7b:6a:21:c2:1d:d9: 64:d9:9b:cc:4f:be:9c:d7:ee:89:1c:09:44:2f:6a: 4b:e8:63:88:86:05:93:b3:86:77:61:9c:ef:62:a3: 86:f9:f0:dc:75:d1:d5:14:63:ba:44:6e:d7:d2:38: bb:6c:be:2f:2a:be:f6:0a:be:29:53:8a:af:ce:6e: 5c:b3:fc:e9:b6:d0:57:3d:b2:dd:47:db:24:84:a9: 89:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:89:79:F4:0D:50:40:22:CC:37:D6:C4:1F:32:FE:91:E1:FE:8D:5E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E50D7EFABCF911EA83F88D29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.52.0/22 103.148.180.0/23 103.154.38.0/23 103.157.240.0/23 IPv6: 2001:df5:3580::/48 2001:df7:80::/48 2404:e640::/32 Signature Algorithm: sha256WithRSAEncryption ba:09:83:8d:2d:5b:54:4d:47:cc:a1:7e:43:49:25:0d:af:a1: 5f:92:de:3c:29:0a:43:17:99:8b:c3:53:66:d9:e9:a9:d5:2b: 59:fa:11:1d:db:1d:e7:d7:d4:12:68:2f:e2:d2:f2:6d:c4:2e: 47:df:5d:fd:8d:ca:11:34:f9:6e:0f:21:ea:ba:81:6e:b7:e9: fc:2c:2d:45:91:03:c8:57:c2:a3:01:09:ff:d8:f5:73:6e:98: da:44:11:f7:c0:68:a0:17:75:6b:78:40:c9:ac:0a:2b:57:93: fc:45:e5:35:23:ac:d3:52:99:32:3b:70:fb:1c:ee:7a:13:b1: f7:41:bb:93:51:16:b6:5a:d2:67:24:35:c0:9a:89:c1:04:87: 68:1d:8a:e7:6b:79:ff:45:b8:55:ea:35:33:ea:6c:de:b7:86: a8:03:e8:b8:31:06:fe:ca:56:76:02:dd:b6:67:65:ad:07:13: e8:49:43:06:8a:02:76:c5:ab:ac:06:71:c5:a6:74:cc:c2:86: 54:bf:6e:12:f5:b5:f7:27:36:a1:98:a0:ea:33:d5:85:45:40: 45:51:b7:17:b6:21:ea:d0:9a:0f:97:a7:fc:1d:a5:70:c4:f0: b1:3b:b4:72:e6:75:3e:e5:63:55:8a:5e:da:17:d8:3b:4e:9a: ad:74:51:58 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgIDALQzMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDgwOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q2ZTktNGJjZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMklEjbCpnRgx/4tLD1SS9MpGRqoAQu4cL1I2Gp78SWmbjHwhlVjCUXjkrRD owYYp7tJJK/F+9A8zmXkN/iHgYCci0q0S1+VnvTfgtXX7cscB/lAhvkk9RApzHlD ZOthazj4YDCAAqWK3A7vaAuszkw+IaLyz6TvDaeQX4rWOlMxzL6YKjF9Zd170zcA Ug7Drx5/Oh9uYlJFSeM/9Nl8yHo2j9l9bG5eEcs09pM/e2ohwh3ZZNmbzE++nNfu iRwJRC9qS+hjiIYFk7OGd2Gc72Kjhvnw3HXR1RRjukRu19I4u2y+Lyq+9gq+KVOK r85uXLP86bbQVz2y3UfbJISpiZkCAwEAAaOCAsgwggLEMB0GA1UdDgQWBBTSiXn0 DVBAIsw31sQfMv6R4f6NXjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0U1MEQ3RUZB QkNGOTExRUE4M0Y4OEQyOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMFIGCCsGAQUFBwEHAQH/ BEMwQTAeBAIAATAYAwQCZ2g0AwQBZ5S0AwQBZ5omAwQBZ53wMB8EAgACMBkDBwAg AQ31NYADBwAgAQ33AIADBQAkBOZAMA0GCSqGSIb3DQEBCwUAA4IBAQC6CYONLVtU TUfMoX5DSSUNr6Ffkt48KQpDF5mLw1Nm2emp1StZ+hEd2x3n19QSaC/i0vJtxC5H 3139jcoRNPluDyHquoFut+n8LC1FkQPIV8KjAQn/2PVzbpjaRBH3wGigF3VreEDJ rAorV5P8ReU1I6zTUpkyO3D7HO56E7H3QbuTURa2WtJnJDXAmonBBIdoHYrna3n/ RbhV6jUz6mzet4aoA+i4MQb+ylZ2At22Z2WtBxPoSUMGigJ2xausBnHFpnTMwoZU v24S9bX3JzahmKDqM9WFRUBFUbcXtiHq0JoPl6f8HaVwxPCxO7Ry5nU+5WNVil7a F9g7TpqtdFFY -----END CERTIFICATE-----Generated at Wed Nov 5 20:50:43 2025 by rpki-client